Authorization Bypass
ovirt-engine-extension-aaa-jdbc is vulnerable to authorization bypass attacks. The vulnerability exists when updating a password in the rhvm database the ovirt-aaa-jdbc-tool tools before 1.1.3 fail to correctly check for the current password if it is expired. This would allow access to an attacke...